0

I am using sim800c module as client to server mosquitto with ssl (tls 1.2) conection. sim800c when sending ssl handshake , does not send extensions parameter (SNI) in Transport Layer Security and mosquitto disconnects connection after handshake packet (Client Hello). I tested the connection with client software like Mqtt.Fx that supported SNI And the connection established . is there a way that Mosquitto to ignore SNI ??

best regard.

is there a way that Mosquitto to ignore SNI ??

hardillb
  • 54,545
  • 11
  • 67
  • 105
Rotanic
  • 1
  • Just to help, what version of mosquitto are you using? – hardillb Aug 26 '23 at 16:39
  • Also include your `mosquitto.conf` file and are you providing a hostname to the sim800c or just an IP address (and does it match the CN/SAN in the broker cert)? – hardillb Aug 26 '23 at 19:46
  • @hardillb . mosquitto version 2.0.17 - I tested with both hostname and IP and no difference was observed . – Rotanic Aug 28 '23 at 06:54
  • Please [edit](https://stackoverflow.com/posts/76982556/edit) the question to add details. Include both `mosquitto.conf` and a log snippet of a connection attempt – hardillb Aug 28 '23 at 07:17
  • `tls_version` needs to be applied to both `listener` blocks and since mosquitto doesn't support virtual hosts it is very unlikely that it makes use of the SNI extension at all. – hardillb Aug 28 '23 at 07:53
  • Remove the `ca_file` as that only applies to verifying client certs and change `cert_file` to use the `fullchain.pem` – hardillb Aug 28 '23 at 17:19

0 Answers0